Senior IT Professional - Security

Position Overview

Applications accepted from: ALL PERSONS INTERESTED

Division/Section : Information Technology / Information Security

Workdays & Hours*: Shift work, could include a Rotating Schedule *** weekends and holidays ***(*Subject to change)

Descriptions Of Duties/Essential Functions

The Information Technology Division of the Houston Airport System (HAS) provides technology systems and information that enhances the passenger experience and empowers the Houston Airports to meet its mission and vision. The Information Security Team provides HAS a robust, secure, and available technology environment by proactively deploying tools, techniques, and procedures (TTP) to protect the confidentiality, integrity, and availability of HAS data, information, and systems.

The Senior IT Professional – Security enables the Houston Airport System to serve its customers by facilitating compliance with IT security plans, policies, and operational procedures. This position develops processes to identify and report vulnerabilities and maintain compliance with remediation standards across the HAS technology environment. The Senior IT Professional - Security configures, deploys, and integrates security tools according to strategic plans, written policies, or observed risks and assists in the selection of security technologies. This position responds to security incidents, investigates security incidents while respecting specific authority boundaries and reports findings in writing to the IT Manager – Security, Information Security Officer, and others. "Must be able to pass a criminal background check, obtain and maintain federally mandated security clearances where required."

The duties of the Senior IT Professional - Security include but are not limited to:

TECHNICAL EXPERT: Typically participates in government and industry technical user’s groups to remain on the leading edge of IT security threats and mitigation strategies. Ensures the safety of IT assets and protects systems from intentional or inadvertent access or destruction. Ensures that user community understands and adheres to necessary procedures to maintain security. Generally, requires familiarity within infrastructure and/or applications functional areas, including domain structures, user authentication, firewalls, network configuration, end point protection, etc. Has in-depth knowledge of intrusion detection and Internet architecture. Must be able to weigh business needs against security concerns and articulate issues to management. Provides guidance to lower-level security professionals.

OPERATIONS & MAINTENANCE: Oversees a variety of highly complex analytical and technical assignments; plans, manages, and implements IT security controls; designs and documents IT security processes, procedures, plans, and standards. Ensures effectiveness of IT controls by performing or facilitating penetration testing, vulnerability assessments, and compliance audit activities. Diagnoses compliance gaps works with business units, external vendors, tenants, and COH departments to attain compliance. Supports security plans for a variety of technologies, business units, and systems.

STRATEGY: Understands IT security risks and impact to business objectives. Contributes to IT security strategy and business planning. Advises IT and business leaders on IT security matters; assists with the prioritization IT-security related risks.

TEAM EFFORT: Contributes to team effort by accomplishing related results and performing related responsibilities as needed.

WORKING CONDITIONS

The position is physically comfortable; the individual has discretion about walking, standing, etc. Operates a motor vehicle. There are no major sources of discomfort, i.e., essentially normal office environment with acceptable lighting, temperature, and air conditions. Significant time spent using computer display, keyboard, and mouse. Requires the ability to make closely coordinated eye/hand movements within very fine tolerance and/or calibration demands. Operates a motor vehicle.

Minimum Requirements

EDUCATIONAL REQUIREMENTS

Associate's degree in Computer Science, Management, and Information Systems (MIS), Business or a related field.

System-specific technical certifications may be considered a substitution for Associate’s degree.

Experience in IT security, infrastructure or applications may be substituted for the education requirement on a year-for-year basis.

Experience Requirements

At least two and a half (2.5) years of information security experience.

License Requirements

None

PREFERENCES

• Preference shall be given to eligible veteran applicants provided such persons possess the qualifications necessary for competent discharge of the duties involved in the position applied for, such persons are among the most qualified candidates for the position, and all other factors in accordance with Executive Order 1-6.***
  
  

Preferences will be given to candidates with the following skillsets:

• 3-5 years of working experience managing security technologies (SIEM, firewalls, IPS/IDS, threat hunting) in a similar environment.
• 3-5 years of working experience identifying security risks and making recommendations to risk mitigation strategies.
• 3-5 years of working experience with endpoint protection EDR/XDR and malware analysis.
• 3-5 years of working experience developing security architecture and technical solutions for security products.
• 3-5 years of working experience with Microsoft Windows Server and Desktop systems
• CISSP, Security+, or GSEC certifications is a plus.
  
  

GENERAL INFORMATION

Selection/Skills Tests Require

The selection process will involve application review and/or interview. Department may administer skills assessment test.

SAFETY IMPACT POSITION

YES - If yes, this position is subject to random drug testing and if a promotional position, candidate must pass an assignment drug test.

Pay Grade - 29

SALARY INFORMATION

Factors used in determining the salary offered include the candidate's qualifications as well as the pay rates of other employees in this classification.

APPLICATION PROCEDURES

Only online applications will be accepted for this City of Houston job and must be received by the Human Resources Department during active posting period. Applications must be submitted online at: www.houstontx.gov .

To view your detailed application status, please log-in to your online profile by visiting: http://agency.governmentjobs.com/houston/default.cfm or call 281-233-1842.

If you need special services or accommodations, call 281-233-1842; (TTY 7-1-1)

If you need login assistance or technical support call 855-524-5627.

Due to the high volume of applications received, the Hiring Department will contact you directly, should you be selected to advance in our recruitment process.

All new and rehires must pass a pre-employment drug test and are subject to a physical examination and verification of information provided.

Applicants are encouraged to attach a cover letter and resume along with their completed application when applying. For further information pertaining to the Houston Airport System, please visit: https://www.youtube.com/watch?v=EDWLV_sJFoM

EOE Equal Opportunity Employment

The City of Houston is committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, genetic information, veteran status, gender identity, or pregnancy.